Gateways

The Gateways are the enforcement point of Access Control Policies and define the only entry-points to your IBM Cloud deployment. The Gateways are software routers that are self-installed, usually one per IBM Cloud private VLAN.

Each Gateway is installed on a dedicated virtual server and they can be interconnected in a mesh of VPN links to other Gateways and to on-premise firewall devices. All employees, remote users and partners who access your cloud servers will connect to the Gateways using standard VPN technology, and will have their identity authenticated and their authorization profiles enforced.

Web Admin Console

The 40Cloud Web Admin Console enables configuration and monitoring all aspects of cloud security. Using the intuitive UI it’s easy to monitor network connectivity status, system events and alarms.

In addition, System Administrators, Security and/or DevOps teams can utilize the Web Admin Console to configure firewall policies, user roles and access rules, as well as build the static VPN connectivity.

How It Works

IBM USE CASES

The 40Cloud solution encrypts your company’s data in-motion on every hop
and automates network security policies to control access to your company’s resources.

Scalable Software Defined Security

With 40Cloud’s streamlined and simplified network security solution, software-defined security can be easily incorporated within DevOps and production environments, enabling maximum agility for new projects. 40Cloud’s northbound REST APIs enable automated configuration and orchestration of firewall and identity-based access policies as well as dynamically controlling the network topology.

Identity-based Network Access

Authorization profiles are enforced on all remote VPN users by means of central, identity-based Access Rights policies (i.e., who can access what). These policies enable you to centrally control back-end access to your entire IBM Cloud deployment, so that no one gains access unless they are authenticated. In addition, these policies can be integrated with existing (on-premise or cloud-based) identity-based authentication and authorization systems, such as Active Directory (AD), LDAP or RADIUS.

Cost efficiency:

The SaaS-based solution provides the flexibility for you to scale as required, with a variety of plans to fit your specific requirements. Since in-house security expertise is hardly required, reduced operating costs are another welcome benefit of 40Cloud’s simplified and automated network security solution.

Enhanced manageability:

40Cloud’s intuitive UI provides full visibility of the cloud deployments. The notification and logging mechanisms add real time alert and forensic capabilities, so that System Administrators are able to better control and monitor their secure cloud network. All security configurations are performed using policies, requiring minimal manual intervention.